Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/tts2ccviMC3aAya_WOGnY3jNou8.roa
File: tts2ccviMC3aAya_WOGnY3jNou8.roa (raw, json)
Hash identifier: clvPvtC8AilQYzTiQNG60HFfo5vDdLZmHFgu8wH2oLM=
Subject key identifier: B6:DB:36:71:CB:E2:30:2D:DA:03:26:BF:58:E1:A7:63:78:CD:A2:EF
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018795F65A95891C4018B26950832CF057C6
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/tts2ccviMC3aAya_WOGnY3jNou8.roa
Signing time: Tue 18 Apr 2023 20:02:42 +0000
ROA not before: Tue 18 Apr 2023 20:02:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58057
IP address blocks: 194.50.94.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
139.28.96.0/22 maxlen: 24
45.131.184.0/22 maxlen: 24
185.232.117.0/24 maxlen: 24
45.136.136.0/22 maxlen: 24
94.177.122.0/24 maxlen: 24
85.202.203.0/24 maxlen: 24
45.12.68.0/22 maxlen: 24
31.42.183.0/24 maxlen: 24
2a0e:97c0:260::/44 maxlen: 44
2a0e:97c3:110::/44 maxlen: 48
2a0e:97c0:791::/48 maxlen: 48
2a0c:3b80::/32 maxlen: 48
2a0c:3b86::/32 maxlen: 48
2001:7f8:119::/48 maxlen: 48
2a0e:97c0:170::/48 maxlen: 48
2a0c:3b85::/32 maxlen: 48
2a0e:97c0:790::/48 maxlen: 48
2a0c:3b82::/32 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a10:cc45:130::/44 maxlen: 44
2a0c:3b83::/32 maxlen: 48
2a0e:97c0:1d0::/44 maxlen: 44
2a0e:b107:1165::/48 maxlen: 48
2a10:2f00:18d::/48 maxlen: 48
2a0e:97c1:200::/40 maxlen: 48
2a10:2f00:18f::/48 maxlen: 48
2a0e:b107:9f2::/48 maxlen: 48
2a0c:3b81::/32 maxlen: 48
2a10:cc40:250::/44 maxlen: 48
2a0f:e404:102::/48 maxlen: 48
2a0c:3b84::/32 maxlen: 48
2a0e:b107:1786::/48 maxlen: 48
2a0e:97c4:120::/44 maxlen: 48
2a0e:97c4:100::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:95:f6:5a:95:89:1c:40:18:b2:69:50:83:2c:f0:57:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Apr 18 20:02:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b6db3671cbe2302dda0326bf58e1a76378cda2ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:d7:2e:e5:ef:a0:bd:28:2b:96:4d:62:4c:eb:
e8:aa:d8:9c:29:32:f3:7f:8a:ef:55:28:3c:ba:09:
bd:29:ae:a4:f5:0b:80:bd:30:88:8f:d5:65:35:2b:
33:fa:48:d0:a7:22:91:a4:7f:de:cf:9e:1a:2a:c4:
1f:01:a3:72:cf:94:d9:0a:58:fa:67:b0:6b:1e:65:
8b:b2:14:eb:88:3c:c0:19:2c:6b:a7:50:a8:e5:a7:
e1:4c:13:c8:6c:03:9c:95:f7:9e:b4:2c:ce:f4:b9:
17:8d:06:a5:63:ab:1e:f5:57:6e:3c:95:7e:ce:db:
3b:a9:e8:a1:79:94:8e:a2:90:57:43:3f:6f:76:52:
a7:9d:81:3d:40:d3:2f:61:1e:cc:03:49:c0:47:4e:
ad:2c:ca:71:30:4c:0a:fb:2a:73:8d:98:a9:14:9e:
17:f3:4a:c4:12:f0:96:5a:a1:fd:b0:38:92:ba:75:
57:c4:95:d0:f5:65:62:4d:51:6a:bd:ab:27:81:bd:
f8:83:45:44:67:17:41:b9:46:68:4d:94:72:2a:4e:
78:54:e8:c9:7d:3a:f6:c1:1d:5c:80:dd:72:01:e9:
b4:ca:5c:2d:95:3d:8f:4f:45:5b:d6:35:84:c2:2b:
67:ea:ff:4d:64:a8:51:07:49:1f:f5:d0:d2:03:42:
f6:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:DB:36:71:CB:E2:30:2D:DA:03:26:BF:58:E1:A7:63:78:CD:A2:EF
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/tts2ccviMC3aAya_WOGnY3jNou8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.183.0/24
45.12.68.0/22
45.131.184.0/22
45.136.136.0/22
85.202.203.0/24
94.177.122.0/24
139.28.96.0/22
185.232.117.0/24
194.50.92.0/24
194.50.94.0/24
IPv6:
2001:7f8:119::/48
2a09:4c0::/29
2a0c:3b80::-2a0c:3b86:ffff:ffff:ffff:ffff:ffff:ffff
2a0e:97c0:170::/48
2a0e:97c0:1d0::/44
2a0e:97c0:260::/44
2a0e:97c0:790::/47
2a0e:97c1:200::/40
2a0e:97c3:110::/44
2a0e:97c4:100::/44
2a0e:97c4:120::/44
2a0e:b107:9f2::/48
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0f:e404:102::/48
2a10:2f00:18d::/48
2a10:2f00:18f::/48
2a10:cc40:250::/44
2a10:cc45:130::/44
Signature Algorithm: sha256WithRSAEncryption
55:05:c6:e4:c3:ae:96:8a:3a:8e:21:a7:ec:98:8f:d4:d1:b8:
04:ee:e5:3e:26:9b:ff:9b:ab:cc:f8:0f:70:95:cf:3b:40:c7:
31:86:44:98:1d:45:06:b2:06:46:ab:82:95:85:dd:18:9f:42:
5f:fe:99:8b:d1:f9:f3:e4:5a:6c:53:14:12:51:5b:48:2f:26:
93:f3:3b:1e:3f:36:7b:5b:63:7c:d3:26:77:fd:db:0d:cf:ef:
cf:ef:e8:3e:8a:3d:50:ac:87:2f:ea:c8:a2:4e:db:6f:f8:93:
8b:95:09:50:cb:65:87:9a:78:f4:36:1f:56:ac:90:16:8e:f0:
08:75:07:d4:41:7f:c3:1a:8c:6d:ad:48:17:82:c3:57:c3:a5:
aa:bf:a7:4e:03:55:78:64:74:e2:a3:32:1b:68:80:95:92:13:
e0:95:15:7e:50:86:92:c2:b2:cb:61:b1:1b:c9:f1:9b:23:b4:
42:df:26:88:35:96:69:23:0d:40:ba:45:20:e6:9e:17:11:74:
c8:e3:ba:f8:d2:f9:d1:4a:4e:3c:bf:20:b5:4a:37:49:da:cb:
80:2f:92:b7:6e:7c:5c:16:09:a1:ef:3d:c2:b2:ad:cf:32:3c:
15:da:b1:c9:ef:ef:15:79:4a:45:a7:71:0c:c1:6d:f8:4e:2a:
82:fc:00:70
-----BEGIN CERTIFICATE-----
MIIF8TCCBNmgAwIBAgISAYeV9lqViRxAGLJpUIMs8FfGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjMwNDE4MjAwMjQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNmRiMzY3MWNiZTIzMDJkZGEwMzI2YmY1OGUxYTc2Mzc4Y2RhMmVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAldcu5e+gvSgrlk1iTOvoqticKTLz
f4rvVSg8ugm9Ka6k9QuAvTCIj9VlNSsz+kjQpyKRpH/ez54aKsQfAaNyz5TZClj6
Z7BrHmWLshTriDzAGSxrp1Co5afhTBPIbAOclfeetCzO9LkXjQalY6se9VduPJV+
zts7qeiheZSOopBXQz9vdlKnnYE9QNMvYR7MA0nAR06tLMpxMEwK+ypzjZipFJ4X
80rEEvCWWqH9sDiSunVXxJXQ9WViTVFqvasngb34g0VEZxdBuUZoTZRyKk54VOjJ
fTr2wR1cgN1yAem0ylwtlT2PT0Vb1jWEwitn6v9NZKhRB0kf9dDSA0L2IwIDAQAB
o4IC/TCCAvkwHQYDVR0OBBYEFLbbNnHL4jAt2gMmv1jhp2N4zaLvMB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvdHRzMmNjdmlNQzNhQXlhX1dPR25ZM2pOb3U4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBEQYIKwYBBQUHAQcBAf8EggEAMIH9MEIEAgABMDwDBAAf
KrcDBAItDEQDBAItg7gDBAItiIgDBABVyssDBABesXoDBAKLHGADBAC56HUDBADC
MlwDBADCMl4wgbYEAgACMIGvAwcAIAEH+AEZAwUDKgkEwDAOAwUHKgw7gAMFACoM
O4YDBwAqDpfAAXADBwQqDpfAAdADBwQqDpfAAmADBwEqDpfAB5ADBgAqDpfBAgMH
BCoOl8MBEAMHBCoOl8QBAAMHBCoOl8QBIAMHACoOsQcJ8gMHACoOsQcRZQMHACoO
sQcXhgMHACoP5AQBAgMHACoQLwABjQMHACoQLwABjwMHBCoQzEACUAMHBCoQzEUB
MDANBgkqhkiG9w0BAQsFAAOCAQEAVQXG5MOuloo6jiGn7JiP1NG4BO7lPiab/5ur
zPgPcJXPO0DHMYZEmB1FBrIGRquClYXdGJ9CX/6Zi9H58+RabFMUElFbSC8mk/M7
Hj82e1tjfNMmd/3bDc/vz+/oPoo9UKyHL+rIok7bb/iTi5UJUMtlh5p49DYfVqyQ
Fo7wCHUH1EF/wxqMba1IF4LDV8Olqr+nTgNVeGR04qMyG2iAlZIT4JUVflCGksKy
y2GxG8nxmyO0Qt8miDWWaSMNQLpFIOaeFxF0yOO6+NL50UpOPL8gtUo3SdrLgC+S
t258XBYJoe89wrKtzzI8Fdqxye/vFXlKRadxDMFt+E4qgvwAcA==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:57 2023 by rpki-client on console.sobornost.net